Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b3/6065d2-103e-4ab7-bfb3-1a8c842afe2a/1/zTt3XTjqK2pYKipg5sAKv7QMsko.roa
File: zTt3XTjqK2pYKipg5sAKv7QMsko.roa (raw, json)
Hash identifier: E8KjttOWErf5Q5LooxN35lqBrLUEdVtb0cUXfvrjM08=
Subject key identifier: CD:3B:77:5D:38:EA:2B:6A:58:2A:2A:60:E6:C0:0A:BF:B4:0C:B2:4A
Certificate issuer: /CN=bf1d5feafd39174725bfe4bef91bd27c7b2f6f91
Certificate serial: 0188058876E681E7CB6F5C16A6D6FE1BED42
Authority key identifier: BF:1D:5F:EA:FD:39:17:47:25:BF:E4:BE:F9:1B:D2:7C:7B:2F:6F:91
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vx1f6v05F0clv-S--RvSfHsvb5E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b3/6065d2-103e-4ab7-bfb3-1a8c842afe2a/1/zTt3XTjqK2pYKipg5sAKv7QMsko.roa
Signing time: Wed 10 May 2023 12:00:09 +0000
ROA not before: Wed 10 May 2023 12:00:09 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 62068
IP address blocks: 193.31.62.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 11 Jul 2023 13:50:51 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:05:88:76:e6:81:e7:cb:6f:5c:16:a6:d6:fe:1b:ed:42
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bf1d5feafd39174725bfe4bef91bd27c7b2f6f91
Validity
Not Before: May 10 12:00:09 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=cd3b775d38ea2b6a582a2a60e6c00abfb40cb24a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:cd:42:c3:c0:5a:b2:cb:79:14:a1:cb:aa:59:
12:b8:82:34:a3:32:ba:35:c1:74:63:7d:78:ee:1a:
dc:d6:d0:f2:77:47:f4:08:b9:a9:b5:30:1b:d2:ef:
b1:63:79:dd:db:69:14:d6:12:b0:89:5d:f2:59:59:
16:d7:07:07:2e:a1:49:43:ba:b4:45:a2:de:d4:6e:
99:d2:20:52:a1:1e:20:47:91:e1:91:6a:48:a7:08:
46:86:89:d2:88:13:5a:91:0b:59:72:21:d8:3f:3b:
17:89:9c:f5:19:d5:2f:d8:f2:08:b6:ef:b9:db:33:
df:db:50:f5:a0:b7:b0:06:e0:a5:c4:2d:8a:ec:39:
9c:e2:c6:7c:43:5d:4c:f1:6f:51:ea:10:14:cc:fa:
16:97:8d:b4:0a:d2:b9:4c:b9:be:ad:13:ab:f8:f3:
6f:19:c1:aa:aa:9f:2e:80:d0:4b:bc:ec:11:eb:cd:
15:0b:dd:a0:26:8b:a8:c7:de:d9:9e:c8:fe:b3:fb:
50:53:3d:f1:56:67:64:f2:5e:b2:2a:c1:9c:74:06:
21:a7:8e:8e:ff:90:c0:0f:50:a4:f9:bf:2f:b7:f5:
00:1e:59:27:83:b4:66:e4:28:89:2f:53:63:bf:4f:
72:58:35:0b:76:37:ea:b2:2e:fb:8b:89:f4:0d:84:
3c:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CD:3B:77:5D:38:EA:2B:6A:58:2A:2A:60:E6:C0:0A:BF:B4:0C:B2:4A
X509v3 Authority Key Identifier:
keyid:BF:1D:5F:EA:FD:39:17:47:25:BF:E4:BE:F9:1B:D2:7C:7B:2F:6F:91
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vx1f6v05F0clv-S--RvSfHsvb5E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/6065d2-103e-4ab7-bfb3-1a8c842afe2a/1/zTt3XTjqK2pYKipg5sAKv7QMsko.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/6065d2-103e-4ab7-bfb3-1a8c842afe2a/1/vx1f6v05F0clv-S--RvSfHsvb5E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.31.62.0/24
Signature Algorithm: sha256WithRSAEncryption
52:24:ad:1f:97:31:b8:78:57:3a:98:2d:90:4c:8a:2f:1a:13:
b6:5a:b5:4f:39:77:d2:69:b7:e3:2f:14:11:c6:f2:e8:90:7f:
d0:bd:fb:a4:28:80:87:00:5c:4e:4d:8b:e3:4c:7a:99:4c:7d:
2f:b7:b7:9b:d0:20:83:b9:c4:4e:ff:85:bd:6c:18:9c:fa:8b:
2c:d0:08:d8:fd:ed:24:b9:b4:24:30:e2:f6:50:65:1d:70:01:
ed:2d:05:b8:c7:09:26:35:4b:38:32:2a:2d:83:2b:52:1d:68:
9a:72:07:ac:8d:99:75:42:8c:ff:8b:50:12:bb:88:2c:9d:e5:
5f:01:78:62:df:40:ce:f0:d7:1b:d8:39:c9:98:4b:33:ac:d2:
9b:d0:da:89:d1:6a:ed:2e:1a:23:8d:4c:9f:28:84:1a:87:b9:
d9:e7:9e:4d:af:a1:c0:c2:60:8e:68:23:21:6c:2a:e6:e5:2a:
a8:4b:a5:08:0f:a7:03:32:e8:73:89:52:37:e1:1d:6e:0a:41:
8a:0e:60:c7:bd:aa:bb:d5:ee:91:cd:d1:e6:b1:35:85:6f:ea:
82:d3:15:73:96:17:da:65:a8:35:c7:b7:11:a8:f4:b5:e9:3f:
43:6c:60:95:0a:be:c4:66:2e:ea:ad:3b:1c:a4:6b:88:e3:f2:
04:6f:9f:9d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:39:29 2024 by rpki-client on console-ams.rpki-client.org